$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.mft File: k524p4YADCa65IN7bs2uD4q60bA.mft (raw, json) Hash identifier: 2AzU0vsxUGJU0yQQcDVQWcAK+PK/qlqo5MoG3QNO5is= Subject key identifier: 5E:9D:34:17:51:51:5D:FD:FC:1E:78:FF:76:B4:BD:D6:45:E7:D4:89 Authority key identifier: 93:9D:B8:A7:86:00:0C:26:BA:E4:83:7B:6E:CD:AE:0F:8A:BA:D1:B0 Certificate issuer: /CN=A91CDEB3/serialNumber=939DB8A786000C26BAE4837B6ECDAE0F8ABAD1B0 Certificate serial: 18EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.mft Manifest number: 18CE Signing time: Sun 20 Jul 2025 16:30:10 +0000 Manifest this update: Sun 20 Jul 2025 16:30:09 +0000 Manifest next update: Sun 27 Jul 2025 16:30:09 +0000 Files and hashes: 1: k524p4YADCa65IN7bs2uD4q60bA.crl (hash: LySBN8XobvB3H1yh5zlnjOao5imlWLOttPZwPvN4G5Q=) 2: 5705E30EFC7A11E8BFCC760AC4F9AE02.roa (hash: dkIdUkxS0d2PbrqHHzMK0XKv4nvJXGsXU3jrSo/hWKk=) 3: A6ACA298858911E88026B416C4F9AE02.roa (hash: Bm6Hg3gh1j1a80wR2XX7xwyi1WY27Wumi8LE07BcSR8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.crl rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6380 (0x18ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDEB3, serialNumber=939DB8A786000C26BAE4837B6ECDAE0F8ABAD1B0 Validity Not Before: Jul 20 16:30:09 2025 GMT Not After : Jul 27 16:30:09 2025 GMT Subject: CN=687d1991-29a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:96:64:f0:c6:03:f1:70:ed:50:47:d5:1b:40: 19:c0:ea:1e:5f:45:91:88:0c:f6:38:3b:86:a0:e8: 72:7f:a8:b4:af:0e:ce:76:63:c6:d4:99:19:58:bc: c5:82:6c:ca:ef:5d:10:66:a1:dd:1e:6a:77:1d:ec: df:6b:3e:d8:4d:62:57:35:a7:d0:b4:7a:9c:7b:17: bf:25:4d:93:33:32:de:11:72:30:54:78:2d:a3:6c: b9:a3:73:6f:27:71:e2:39:f7:65:56:e5:dc:cd:68: 5d:3b:5e:3a:fd:ef:19:45:0c:80:a8:20:e5:07:47: 4e:0b:89:84:92:2a:b0:24:a5:bb:7c:ba:63:f3:84: ea:93:61:de:b3:86:a4:c4:80:24:07:28:54:17:49: ab:72:58:c7:4b:37:7c:b8:51:83:2a:eb:70:94:b5: 90:e1:03:0f:0d:ee:3a:d5:c8:c8:ea:24:e3:9d:4f: b6:5f:17:a3:a4:26:f5:d1:42:bf:ef:a7:1e:c0:28: 07:6a:50:9d:90:11:bf:d8:8d:ed:cc:7c:33:60:bb: 79:3c:02:0d:8e:90:03:fa:93:99:10:bf:ba:c9:19: ea:84:f5:2f:ac:10:48:19:d0:5f:e4:9d:ff:92:18: 9d:24:dd:6e:00:5e:b5:b3:1d:39:5e:2f:73:ff:19: db:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:9D:34:17:51:51:5D:FD:FC:1E:78:FF:76:B4:BD:D6:45:E7:D4:89 X509v3 Authority Key Identifier: keyid:93:9D:B8:A7:86:00:0C:26:BA:E4:83:7B:6E:CD:AE:0F:8A:BA:D1:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:4e:52:52:2f:41:89:06:5e:a0:68:fa:1d:49:e3:2b:66:b2: 5d:2e:df:68:9f:0b:16:e8:62:b1:56:73:92:2c:e2:6e:ba:12: 63:61:b9:8c:c2:bc:20:61:e0:ee:88:87:54:76:a8:9f:25:5e: 7a:13:83:65:35:18:1a:3b:03:55:63:af:ab:12:a5:92:43:5b: 2b:2a:b5:b9:75:a8:2e:cd:2f:8a:37:30:ef:79:b2:8d:bd:1c: c1:1f:aa:82:f8:82:5b:31:8a:15:94:0b:37:3d:18:c9:fd:7f: 1b:08:8e:91:c5:2f:48:e2:7f:fe:01:b8:19:42:01:04:65:92: 39:d9:e6:c9:0f:0e:de:01:3e:16:c7:67:4a:85:2e:32:77:23: aa:ad:4a:83:5d:20:82:2f:75:31:1f:33:52:d3:11:46:22:46: 98:13:e7:a8:89:a2:15:3e:7b:86:b9:3e:57:02:97:6f:f4:ab: 41:95:fa:b5:76:b2:b6:20:fb:c7:4b:be:db:03:08:a2:07:f1: 1f:4d:b2:26:b9:0f:b1:45:59:dd:d3:3b:06:f9:ff:94:07:6a: 45:9c:f1:77:24:45:12:86:75:1e:e0:15:f3:dc:e8:82:f4:b8: 5e:f4:2f:f3:70:de:6c:26:e6:16:22:23:05:93:62:b1:08:7f: 32:d1:18:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RFQjMxMTAvBgNVBAUTKDkzOURCOEE3ODYwMDBDMjZCQUU0ODM3QjZFQ0RBRTBG OEFCQUQxQjAwHhcNMjUwNzIwMTYzMDA5WhcNMjUwNzI3MTYzMDA5WjAYMRYwFAYD VQQDEw02ODdkMTk5MS0yOWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pZk8MYD8XDtUEfVG0AZwOoeX0WRiAz2ODuGoOhyf6i0rw7OdmPG1JkZWLzF gmzK710QZqHdHmp3Hezfaz7YTWJXNafQtHqcexe/JU2TMzLeEXIwVHgto2y5o3Nv J3HiOfdlVuXczWhdO146/e8ZRQyAqCDlB0dOC4mEkiqwJKW7fLpj84Tqk2Hes4ak xIAkByhUF0mrcljHSzd8uFGDKutwlLWQ4QMPDe461cjI6iTjnU+2XxejpCb10UK/ 76cewCgHalCdkBG/2I3tzHwzYLt5PAINjpAD+pOZEL+6yRnqhPUvrBBIGdBf5J3/ khidJN1uAF61sx05Xi9z/xnbcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6dNBdR UV39/B54/3a0vdZF59SJMB8GA1UdIwQYMBaAFJOduKeGAAwmuuSDe27Nrg+KutGw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREVCMy81RDczNUQ0Njk2 REUxMUU3QkE3RDJBNzdDNEY5QUUwMi9rNTI0cDRZQURDYTY1SU43YnMydUQ0cTYw YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s1MjRwNFlBRENhNjVJTjdiczJ1RDRxNjBiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD REVCMy81RDczNUQ0Njk2REUxMUU3QkE3RDJBNzdDNEY5QUUwMi9rNTI0cDRZQURD YTY1SU43YnMydUQ0cTYwYkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUTlJSL0GJBl6gaPodSeMrZrJdLt9onwsW6GKxVnOSLOJuuhJjYbmM wrwgYeDuiIdUdqifJV56E4NlNRgaOwNVY6+rEqWSQ1srKrW5daguzS+KNzDvebKN vRzBH6qC+IJbMYoVlAs3PRjJ/X8bCI6RxS9I4n/+AbgZQgEEZZI52ebJDw7eAT4W x2dKhS4ydyOqrUqDXSCCL3UxHzNS0xFGIkaYE+eoiaIVPnuGuT5XApdv9KtBlfq1 drK2IPvHS77bAwiiB/EfTbImuQ+xRVnd0zsG+f+UB2pFnPF3JEUShnUe4BXz3OiC 9Lhe9C/zcN5sJuYWIiMFk2KxCH8y0Rgw -----END CERTIFICATE-----Generated at Sun Jul 20 19:01:58 2025 by rpki-client